Can the Link Controller/LTM be configured so that traffic from the Internet is passed to a firewall behind the LTM using the public destination IP address? Inbound Traffic: Internet -> Link Controller/LTM -> Firewall (NAT to private IP) -> DMZ The firewall would translate IP addresses from public to private Return Traffic: DMZ -> Firewall (NAT to original public IP) -> Link Controller/LTM The Link Controller uses a default gateway pool with 3 ISP public addresses.

Yes, you can do it by configuring virtual servers of type IP Forwarding. When creating the virtual server, you need to configure the same Public IP (which is managed by the FW) in the destination field. http://support.f5.com/kb/en-us/solutions/public/7000/500/sol7595.html

Forum Discussion

DP_123828

Nimbostratus

Jul 31, 2014

LTM VLAN Design

Can the Link Controller/LTM be configured so that traffic from the Internet is passed to a firewall behind the LTM using the public destination IP address?

Inbound Traffic: Internet -> Link Controller/LTM -> Firewall (NAT to private IP) -> DMZ

The firewall would translate IP addresses from public to private

Return Traffic: DMZ -> Firewall (NAT to original public IP) -> Link Controller/LTM

The Link Controller uses a default gateway pool with 3 ISP public addresses.

application delivery

design

LTM

1 Reply

jmanya_44531
Nimbostratus
Aug 01, 2014
Yes, you can do it by configuring virtual servers of type IP Forwarding. When creating the virtual server, you need to configure the same Public IP (which is managed by the FW) in the destination field.

http://support.f5.com/kb/en-us/solutions/public/7000/500/sol7595.html